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(54) Method, apparatus, and communication system for exchange of information in pervasive 
environments 



(57) The present invention provides a method, an 
apparatus, and a communication system for the ex- 
change of information in a networked pervasive environ- 
ment. Therewith an authenticated and secure session 
can be achieved. Therefor are used a first device and 
at least a remote second device. A unidirectional wire- 
less communication channel between the first device 



and the remote second device is initiated, whereby a 
sequence via the unidirectional wireless communication 
channel from the first device to the remote second de- 
vice is sent in order to furnish the remote second device 
with encryption information. An encrypted response is 
sent via a wireless broadcast medium to the first device 
by using said encryption information for encryption. 
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[0008] Xerox Corporation has developed a handheld 
computing device called PARC TAB. The PARC TAB is 
portable yet connected to the office workstation through 
base stations which have known locations. The PARC 
TAB base stations are placed around the building, and 
wired into a fixed wired network. The PARC TAB system 
uses a preset knowledge of the building layout and the 
identifiers of the various base stations to decide where 
it is by the strongest base station signal. A PARC TAB 
portable device has a wireless interface to the base sta- 
tions. The PARC TAB system assumes that the PARC 
TAB portable device is always connected to the network 
infrastructure. The location of each portable PARC TAB 
device is always known to the system software. 
[0009] The base stations establish regions and are 
connected to power supplies. PARC TAB communica- 
tion systems have a star topology. 
[0010] In an attempt to standardize data communica- 
tion between disparate PC devices several companies, 
including Ericsson, IBM, Intel, Nokia, and Toshiba es- 
tablished the Bluetooth consortium to create a global 
standard for wireless RF-based connectivity between 
fixed : portable and mobile devices. There are many oth- 
er adopter companies. The proposed standard compris- 
es an architecture and protocol specifications ranging 
from the physical layer up to the application layer. The 
technology will for instance enable solutions to automat- 
ically synchronize application information kept in mobile 
devices with the similar information kept in a fixed desk- 
top computer when users enter their offices. Enabling 
seamless voice and data transmission via wireless, 
short-range radio, the Bluetooth technology will allow 
users to connect a wide range of devices easily and 
quickly, without the need for cables, expanding commu- 
nications capabilities for mobile computers, mobile 
phones and other mobile devices. The Bluetooth oper- 
ating environment is not yet fully defined, but there are 
expected to be similarities with the IrDA (Infrared Data 
Association) specification and the Advanced Infrared 
(Air) specification. Other aspects that probably will find 
their way into Bluetooth might stem from the IEEE stand- 
ard 802.11 and/or HIPERLAN, as promulgated by the 
European Telecommunications Standards Institute (ET- 
S1). 

[0011] Bluetooth radio technology provides a mecha- 
nism to form small private ad-hoc groupings of connect- 
ed devices away from fixed network infrastructures. 
Bluetooth makes a distinction between a master unit - 
which is a device whose clock and hopping sequence 
are used to synchronize all other devices - and slave 
units in the same network segment. In other words, the 
Bluetooth approach is centralized. A query-based dis- 
covery scheme is used for finding Bluetooth devices 
with an unknown address. Queries are also centralized 
at a registry server. It is a drawback of such a centralized 
approach that there is a central point of failure. It is an- 
other disadvantage of such a system that more over- 
head is required than in a distributed scheme. The main 



problem of such a system is in locating a single registry 
server, and what to do if it disappears. If a random two 
devices encounter each other they must first recognize 
each other's presence, then decide which is the registry 
5 server, and then go about their business of communi- 
cating. It is this continual selection and re-selection of a 
leader that causes the increased overhead. The alter- 
native is to expect users to carry one device that they 
always have with them, and make it always the leader. 
10 This, however, is not always a practical option. 

[0012] The Infrared Data Association (IrDA) is an as- 
sociation of over 1 50 companies world wide focused on 
providing infrared standards and specifications to en- 
sure the quality and interoperability of the infrared tech- 
15 nology. IrDA-D is the infrared data transmission stand- 
ard designed lor data transfer over a distance of 1 m, 
scaleable from 115 kb/s to 4Mb/s or 16 Mb/s in the near 
future. There is a wide range of supported hardware and 
software platforms. IrDA Data defines a standard for an 
20 interoperable universal two way cordless infrared light 
transmission data port and is recommended for high 
speed short range, line-of-sight, point-to-point cordless 
data transfer. IrDA Data Protocols consist of a set of 
mandatory protocols and optional protocols. However, 
25 the original specifications show some drawbacks and 
restrict the data communication such that only one pair 
of devices coutd communicate in the same infrared 
space at one time. In a collaboration between the com- 
panies Hewlett-Packard and IBM a further specification, 
30 called the Advanced Infrared (Air), has been developed 
which will define the next generation of infrared data 
communication systems. Air is proposed for in room 
multipoint to multipoint connectivity. The distance and 
data rate are variable ranging from 250 kb/s over 8 m to 
35 4 Mb/s over 4 m. It is designed for cordless connections 
to multiple peripherals and meeting room collaboration 
applications. More details about IrDA can be found at 
the IrDA web site http://www.irda.org. 
[0013] HomeRF (based on Shared Wireless Access 
40 Protocol (SWAP) is another example of an operating en- 
vironment which can be used to connect devices. A 
HomeRF Working Group was formed to provide the 
foundation for a broad range of interoperable consumer 
devices by establishing an open industry specification 
45 tor wireless digital communication between PCs and 
consumer electronic devices anywhere in and around 
the home. The working group, which includes the lead- 
ing companies from the personal computer, consumer 
electronics, peripherals, communications, software, 
50 and semiconductor industries, is developing a specifi- 
cation for wireless communications in the home called 
the SWAP The HomeRF SWAP system is designed to 
carry both voice and data traffic and to interoperatc with 
the Public Switched Telephone Network (PSTN) and the 
55 internet; it operates in the 2400 MHz band and uses a 
digital frequency hopping spread spectrum radio. The 
SWAP technology was derived from extensions of ex- 
isting cordless telephone (DECT) and wireless LAN 
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cation partner. People are accustomed to pointing to 
things from their childhood on. Additionally, pointing has 
the advantage of explicitly selecting a communication 
target: e.g. with PAN links the user has to actually touch 
the communication target; with laser links a communi- 
cation partner can be selected visually. 
[0025] If the two devices share the same wireless 
broadcast medium and are part of a local network then 
the advantage occurs, that an initiated session can be 
continued even if the user with the personal device 
changes his location by walking to other rooms or floors. 
This will be helpful if the personal device downloads 
larger files or communicates with the serving device for 
a longer period of time. As wireless broadcast medium 
can be used an infrared (IR) channel or a radio-frequen- 
cy (RF) channel, in particular an IrDA channel, a 
HomeRF channel, a Bluetooth channel, a Personal Area 
Network (PAN) channel, an acoustic channel, or any 
other channel that guarantees the user a wide range of 
action. 

[0026] For initiating the communication session and 
for transmitting an initial-sequence that may contain 
sensitive information, the unidirectional wireless com- 
munication channel can ensure that only the target de- 
vice receives the initial-sequence. It is especially advan- 
tageous if a directed channel as lineof-sight link can be 
used, because than no other parties can eavesdrop and 
receive the initial-sequence. Such a channel can be an 
optical channel, e.g. an infrared or a laser channel, a 
Personal Area Network (PAN) channel, a directed radio- 
frequency (RF) channel, an inductive channel, a capac- 
itive channel, or every other channel that is suitable for 
low-range, directed communication links. 
[0027] If the serving device signalizes the reception 
of the sequence from the personal device, then the ad- 
vantage occurs, that the user gets a feedback and 
knows that the serving device is ready for further com- 
munication. This can be indicated by an optical and/or 
acoustical signal that is given by a lamp, a LED, or a 
loudspeaker. 

[0028] When the serving device listens periodically for 
the sequence from the personal device, then the advan- 
tage shows up that a sent sequence can be processed 
immediately. 

[0029] It is very simple to set up a communication if 
the personal device is connected to a user, e.g. by a 
PAN, because the user touches then in an intuitive way 
the serving device for initiating the unidirectional wire- 
less communication channel via his body. There are no 
additional cards or other things necessary for setting up 
an authenticated session . 

[0030] If the response as well as the further commu- 
nication over the wireless broadcast medium is protect- 
ed by using a cryptosystem, than the advantage occurs, 
that the exchanged information is hidden perfectly and 
can not be uncovered by someone else. A suitable sys- 
tem can be a public-key cryptosystem where only the 
public key is exchanged once. 



[0031] It is a further advantage of the invention that - 
in the case of a wireless unidirectional link - no direct 
contact between the personal and the serving device is 
necessary. For instance cash-cards, smart-cards, or 

s any other card in the personal device or the personal 
device itself can be loaded or upbaded with information, 
e.g. e-mails, data, or amounts of money from a relative 
distance. Cards do not need to be put in devices or read 
devices which avoids read errors, makes PIN codes su- 

10 perfluously, and helps to save time. 

[0032] A secure session starts right close to or in front 
of a serving device and can be carried on in a secure 
way at a larger distance. Serving devices can be in- 
stalled everywhere these devices are useful for in- 

'5 stance: in banks, offices, warehouses, shopping cent- 
ers, and outside of buildings, just to mention some ex- 
amples. This brings the user more independence and 
freedom of action. For instance the serving device can 
be placed right near an advertisement for a concert. A 

20 ticket for this concert can be bought and paid already at 
the platform of a train station where the user is waiting 
and sees the advertisement for the concert. The ticket 
can be electronically stored on a card or the personal 
device and can be uploaded at the entrance of the con- 

25 cert. The user docs not have to wait in a queue at a ticket 
office and will not forget to buy the ticket. 

DESCRIPTION OF THE DRAWINGS 

30 [0033] The invention is described in detail below with 
reference to the following schematic drawings. 



FIG. 1 shows a schematic illustration of an applica- 
tion according to the present invention where 
a user wants to establish an authenticated 
session between his personal device and a 
remote serving device. 

FIG. 2 shows a more detailed schematic illustration 
of Fig. 1. 
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[0034] All the figures are for the sake of clarity not 
shown in real dimensions, nor are the relations between 
the dimensions shown in a realistic scale. 

DETAILED DESCRIPTION OF THE INVENTION 



[0035] For the purpose of the present description the 
term networked pervasive computing environment is 

50 defined as an environment of both portable and fixed 
information devices that communicate through wireless 
networking technology. Communication between devic- 
es within such an environment is proximity based The 
startup-communication range of these devices is small. 

55 Thus, only when devices are in proximity can a session 
be initiated. Furthermore, establishment of communica- 
tion relationships is of an ad-hoc nature. That means 
communication on the physical layer can take place 
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units of the second device 2 are connected to a second 
processing unit 26 that again is connected to further 
units for data processing or even to a network but for 
the sake of clarity, this is not depicted. The second trans- 
ceiver 21 has a second broadcast-transmitter 22 and a 5 
second broadcast-receiver 23. Further, the second de- 
vice 2 shows a signal-device 30 which is here a LED. 
This LED 30 is connected to the central processing unit 
26. The task of the two cryptosystems 15, 25 is to en- 
c rypt and decrypt information and therewith to cover and 10 
protect the exchanged information. 
[0046] To provide authenticity the present scheme 
employs a public-key scheme. That means a first party 
creates a public key by using a private key and a cryp- 
tographic algorithm and sends this public key to a sec- is 
ond party or makes the public key available for other 
parties. Then, for instance the second party can encrypt 
information by using the received public key. The en- 
crypted information is sent back via an insecure medium 
or channel, e.g. a wireless broadcast medium such as 20 
a radio-frequency (RF) channel. However, only the first 
party is able to decrypt the information by using their 
private key. 

[0047] The initial-scheme according to the present in- 
vention works as follows. The user 7 X for the sake of clar- 25 
ity not shown in Figure 2, sends from the first device 1 
by using the initial-transmitter 10 the sequence 5 that 
comprises here an initiating token T init v\a the unidirec- 
tional wireless communication channel 3, that is here a 
directed IR channel, to the second device 2. The initiat- 30 
ing token T init contains a public key K? ub of the first de- 
vice 1 and a randomly chosen nonce p By transmitting 
the initiating token T inil via the unidirectional wireless 
communication channel 3 only the intended second de- 
vice 2 can receive and respond to it. If the second device 35 
2 receives the sequence 5 at the initial-receiver 20 and 
the second processing unit 26 is informed and delivered 
with the sequence 5, then the LED 30 is triggered by the 
first central processing unit 16 and signalizes the user 
7 that the second device 2 is ready and a communication 40 
session can start. The session is controlled by the user 
at all times, which further means that the user can stop 
the session immediately. Normally, the second device 2 
responds to the received initiating token T hlt by sending 
from the second broadcast-transmitter 22 a public-key 45 
token T pub as response 6 back to the first device 1 using 
the wireless broadcast medium 4 that is here a radio- 
frequency (RF). The public-key token T pub that is creat- 
ed by the second cryptosystem 25 contains the concate- 
nation of the public key K^ ub of the second device 2 and so 
the received nonce p ; the public-key token T pub is en- 
crypted using the public key KjjJ^ of the first device 1, 
that was received in the initiating token T injt Finally, the 
first device 1 receives the response 6 by the first-main 
receiver 1 2, processes this response 6 by using the first ss 
processing unit 16 and the first cryptosystem 15, and 
sends a communication sequence 9 that comprises a 
communication-parameter token 7 com back by using the 
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first broadcast-transmitter 13. This communication se- 
quence 9 is also transmitted over the wireless broadcast 
medium 4 and is received by the second broadcast-re- 
ceiver 23 of the second device 2. The communication- 
parameter token T com is encrypted with the received 
public key K| ub of the second device 2. 
[0048] The exchanged token can be mathematically 
expressed as follows. 

7 M = / Cj n0n ° e p 

Tpub = [K s P ub II nonce p] kP 



'pub 

[0049] The first cryptosystem 15 provides the initiat- 
ing token 7} ffl -,and the communication-parameter token 
T com , whereas the second cryptosystem 25 provides the 
public-key token T pub . 

[0050] Subsequent communication between the first 
device 1 and second device 2 takes place over the wire- 
less broadcast medium 4 by using the first transceiver 
11 and the second transceiver 21 . Thereby are used the 
communication parameters specified by the first device 
1. 

[0051] An authenticated session has been described 
in a first embodiment above. However, to exchange sen- 
sitive information, e.g. credit card information, authen- 
ticity alone is not sufficient. A secured, private commu- 
nication link between the first device 1 and the second 
device 2 is required. Therefore a second embodiment 
is achieved by including in the communication-parame- 
ter token T^a cryptographic session key KP sess gen- 
erated by the first cryptosystem 15 of the first device 1 . 
Each subsequent communication between both devices 
is encrypted by using this session keyKP ess . 
[0052] Another embodiment is addressed in relation 
to the first and second embodiment in the following. Typ- 
ically interactions between the first device 1 that is a per- 
sonal device and the second device 2 that is a serving 
device take place within a specific, timed context. In or- 
der to prevent the serving device 2 from being able to 
reuse the initiating token 7} n/V over and over again, a due- 
date 7*g' is a attached to the initialing token T mit Both 
are transmitted within the sequence 5. The personal de- 
vice 1 responds to the public-key token T pub only if the 
due-date T™* attached to the initiating token 7) n/f has not 
yet passed. Note that the due-date is relative to the 
personal device 1 notion of time. 
[0053] Still another embodiment is a variation of the 
above described embodiments. Similar to the due-dated 
initiating token 7™', a due-date is attached to the 
session key K £ generated by the personal or first de- 
vice 1 and transmitted over the wireless broadcast me- 
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is connected to a user (7), and wherein said user 
(7) touches said remote second device (2) tor initi- 
ating said unidirectional wireless communication 
channel (3) via the user's body. 

1 3. The method of claim 1 , wherein one of said two de- 
vices (1 , 2) sends at least a communication param- 
eter and/or a session key. 

14. The method of claim 1, wherein said response (6) 
over said wireless broadcast medium (5) is protect- 
ed by using a cryptosystem, preferably a public-key 
cryptosystem. 



70 



with a second device (2), each having a crypto- 
graphic system (1 5, 25) for encoding and decoding 
of information, whereby 

° said first device (1) comprises an initial -trans- 
mitter (1 0) for sending a sequence (5) via a uni- 
directional wireless communication channel (3) 
to said second device (2) in order to furnish said 
second device (2) with encryption information, 
and a first transceiver (11) for encrypted com- 
munication between said first and second de- 
vice (1, 2) over a wireless broadcast medium 
(4), and 



15. The method of claim 1, wherein said encryption in- 
formation comprises a password and/or a public 
key. 

16. An apparatus for providing an authenticated com- 
munication session with at least one remote device 20 
(2), comprising 

0 an initial-transmitter (10) for transmitting a se- 
quence (5) via a unidirectional wireless com- 
munication channel (3) to said remote device 2s 

(2), 

• a receiver ( 1 2) for receiving encrypted informa- 
tion from said remote device (2) via a wireless 
broadcast medium (4), and 30 



a cryptographic system (15) providing encryp- 
tion information which is transmitable over said 
unidirectional wireless communication (3) 
channel to said remote device (2) and whereby 
said receiver (12) is able to receive over said 
wireless broadcast medium (4) encrypted infor- 
mation which is processable by said crypto- 
graphic system (15). 



17. An apparatus for providing an authenticated com- 
munication session with at least one device (1), 
comprising 

0 an initial-receiver (20) for receiving a sequence 
(5) via a unidirectional wireless communication 
channel (3) from said device (1 ) in order to ob- 
tain encryption information, 

0 a cryptographic system (25) for processing said 
encryption information, and 



o a transmitter (22) for transmitting encrypted in- 
formation to said device (1) over a wireless 
broadcast medium (4). 55 

18. A communication system for providing an authenti- 
cated communication session of a first device (1) 
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o said second device (2) comprises an initial-re- 
ceiver (20) for receiving said sequence (5) from 
said first device (1) via said unidirectional wire- 
less communication channel (3) in order to ob- 
tain said encryption information, and a second 
transceiver (21) for encrypted communication 
between said first and second device (1, 2) over 
said wireless broadcast medium (4). 

19. The apparatus according to claim 16, further com- 
prising a transmitter (13) which is able to transmit 
encrypted information over said wireless broadcast 
medium (4). 

20. The apparatus according to claim 1 6, whereby said 
initial-transmitter (10) transmits said sequence (5) 
via said unidirectional wireless communication 
channel (3) in a reach of a few meters. 

21 . The apparatus according to claim 1 6 or 1 7, whereby 
said wireless broadcast medium (4) is an optical 
channel, an acoustic channel, a radio-frequency 
(RF) channel, a HomeRF channel, a Bluetooth 
channel, or a Personal Area Network (PAN) chan- 
nel. 

22. The apparatus according to claim 16 or 17, whereby 
said wireless broadcast medium (4) has the same 
reach or a reach beyond the reach of said unidirec- 
tional wireless communication channel (3). 

23. The apparatus according to claim 17, further com- 
prising a signal-device (30) for signalizing the re- 
ception of said sequence (5), preferably by an opti- 
cal and/or acoustical device such as a LED and/or 
a loudspeaker. 

24. The apparatus according to claim 1 7, whereby said 
initial-receiver (20) listens periodically for said se- 
quence (5). 

25. The communication system according to claim 1 8, 
whereby one of said two devices (1, 2) is able to 
send a communication parameter and/or a session 
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